Skip to Content
Information
Unsupported content This version of the product has reached end of support. The documentation is available for your convenience. However, you must be logged in to access it. You will not be able to leave comments.

Managing vulnerabilities: Vulnerability Manager and Threat Director

BladeLogic Portal provides two mechanisms for managing vulnerabilities and maintaining the integrity of enterprise computing environments: Vulnerability Manager and Threat Director.

Both Threat Director and Vulnerability Manager let you use tools such as Qualys, Nessus, and Rapid7 to scan for vulnerabilities, import that information into BladeLogic Portal, and then analyze, prioritize, and remediate the vulnerabilities.

Vulnerability Manager

BladeLogic Portal provides an out-of-the-box set of tools for managing vulnerabilities called Vulnerability Manager. (In earlier versions, this capability was called Vulnerability Management.) Vulnerability Manager lets you import vulnerability scan files from scanning tools such as Qualys, map assets in those scans to servers managed in BMC Server Automation, and then map vulnerabilities detected in scans to BladeLogic remediation content. When mapping is complete, you can launch a wizard that generates operations to remediate vulnerabilities.

For an overview of the Vulnerability Manager process and links to more detailed information, see Using-Vulnerability-Manager.

Threat Director

Threat Director provides the same capabilities as Vulnerability Manager but also includes other key features:

  • Network support—Threat Director allows you to map assets in vulnerability scans to network devices managed in BMC Network Automation and then to map vulnerabilities detected in scans to network rules for which corrective actions have been defined.
  • Analytic capabilities—Threat Director provides dashboards that help security teams identify risks and communicate those priorities to operations personnel. Then, operators can use the Threat Director dashboards to refine their actions so they can remediate servers with the highest priority vulnerabilities.
  • Integration with BMC Discovery—Threat Director can import data from BMC Discovery that helps identify servers not included in vulnerability scans. It also lets you filter information on dashboards by application.

Threat Director requires its own license, and you must enroll endpoints in Threat Director. (An endpoint is a server in BMC Server Automation or a network device in BMC Network Automation.) There is a per-endpoint fee, although you can enroll the first 100 endpoints for no charge.

For an overview of the Threat Director process and links to more detailed information, see Using-Threat-Director.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC BladeLogic Portal 2.2